セキュリティー設計

まずはOnionShareの仕組みを理解するには、:ref:`how_it_works`を訪れて下さい。

全てのソフトウェアのように、OnionShareにバグや脆弱性があるかもしれない。

OnionShareが防衛できる脅威

Third parties don't have access to anything that happens in OnionShare. Using OnionShare means hosting services directly on your computer. When sharing your files with OnionShare, they are not uploaded to any third-party server. If you make an OnionShare chat room, your computer acts as a server for that too. This avoids the traditional model of having to trust the computers of others.

ネットワーク上の盗聴者がOnionShareで送受信されるデータを傍受できません。 TorオニオンサービスとTorブラウザの間の接続は終端間暗号化されます。つまり、ネットワーク盗聴者は解読できないTorトラフィックしか傍受できません。たとえ盗聴者は悪用rendezvousノードを使ってTorブラウザ/OnionShareのオニオンサービス間のトラフィックをルーティングしても、オニオンサービスの秘密鍵で暗号化されるから解読できません。

OnionShareユーザの匿名性はTorに保護されます。 OnionShareとTorブラウザはユーザの匿名性を保護します。OnionShareユーザが匿名でTorブラウザのユーザとアドレスを共有する限り、誰もがOnionShareユーザの身元を突き止めることができません。

If an attacker learns about the onion service, they still can't access anything. Prior attacks against the Tor network to enumerate onion services allowed attackers to discover private .onion addresses. To access an OnionShare service from its address, the private key used for client authentication must be guessed (unless the service is already made public by turning off the private key -- see Turn Off Private Key).

OnionShareが防衛できない脅威

Communicating the OnionShare address and private key might not be secure. Communicating the OnionShare address to people is the responsibility of the OnionShare user. If sent insecurely (such as through an e-mail message monitored by an attacker), an eavesdropper can tell that OnionShare is being used. Eavesdroppers can access services that are still up by loading their addresses and/or lost key in the Tor Browser. Avoid this by communicating the address securely, via encrypted text message (probably with disappearing messages enabled), encrypted e-mail, or in person. This isn't necessary when using OnionShare for something that isn't secret.

Communicating the OnionShare address and private key might not be anonymous. Extra precaution must be taken to ensure the OnionShare address is communicated anonymously. A new e-mail or chat account, only accessed over Tor, can be used to share the address. This isn't necessary unless anonymity is a goal.